If this is your first visit, be sure to
check out the FAQ by clicking the
link above. You may have to register
before you can post: click the register link above to proceed. To start viewing messages,
select the forum that you want to visit from the selection below.

Nessus 3.0 has been released...

From the newsletter...

I'm thrilled to announce the availability of Nessus 3.0.0 !

Nessus 3 is a complete rewrite of the Nessus engine, designed for
speed and efficency -- as a result Nessus 3 is on average twice as
fast as Nessus 2 (with spikes as high as five times faster) and is
less resource intensive.

The Nessus 3 major enhancements are the following :

- New NASL3 engine
- Improved plugin storage for faster startup time
- Improved networking functions
- New scanner architecture to be both efficient and robust
- The Nessus daemon fetches the plugins automatically when registered
(this can be disabled in nessusd.conf)
- Improved error handling

I'm also happy to announce that we're extending the service we offer
to our direct feed customers to include full email support, with
access to our customer portal which gives users the ability to reset
their activation codes, track their support tickets, and have access
to the Nessus Support Knowledge base.

We have also changed our plugins license agreement so that
consultants do not have to fax us to ask permission to use the plugin
feed any more.

I haven't been reading up since they closed Nessus and gnessus or whatever was announced (the fork.) Is 3.0.0 available from source for non-Tenable paying users?

"Data is not necessarily information. Information does not necessarily lead to knowledge. And knowledge is not always sufficient to discover truth and breed wisdom." --SpafAnyone who is capable of getting themselves made president should on no account be allowed to do the job. --Douglas Adams (1952-2001)
"...people find it far easier to forgive others for being wrong than being right." - Albus Percival Wulfric Brian Dumbledore

Looks like you have to go through the registration process prior to the download. I'm not ready to do that yet, so I didn't get to the listings. I suspect you get the binaries and installer, rather than the source.

Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

I made my first pass at installing the RPM made for SuSE 9.3. It failed due to shared library dependencies (or so it believes). I'm going to resolve it later today but thus far, I've seen what I expect from a new rev - installation issues.

Tenable is now only providing the source code for revs earlier than 3 via direct FTP download. If you want the installer for any of the 2.x builds, you'll have to get it through the website where you have to agree to the EULA.

I believe that you just don't get the most speedy updates if you're not a paying customers.

Yep Phisssshy. There is a seven day lag on non GPL nasls. The catch here is that soon there will be no GPL nasls as Tenable races through the plugin library, rewrites the nasls, and then slaps a Tenable copyright on them.

Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

- Please run /opt/nessus/sbin/nessus-add-first-user to add an admin user
- Register your Nessus scanner at http://www.nessus.org/register/ to obta
in
all the newest plugins
- You can start nessusd by typing /etc/init.d/nessusd start

Now this is running through coLinux but it sitll worked beautiful... I will say when it processes the plugins it's quite the resource hog... coLinux sits in the background using 0% CPU and 7MB RAM... While the RAM never increased during the plugin processing.... the CPU was sitting steady between 60-80%... I don't even see it leave 0% when I'm running X. (Mind you starting the daemon is MUCH faster than it was with the 2.x family.... like 1/4 of the time at the most)...

I just got called upstairs... I'm going to run a few scans when I get back and I'll post to results....I've noticed a lag in their registration system... I submitted a request like 30 minutes ago and still don't have the email with the activation code.

Peace,
HT

IT Blog: .:Computer Defense:.PnCHd (Pronounced Pinched): Acronym - Point 'n Click Hacked. As in: "That website was pinched" or "The skiddie pinched my computer because I forgot to patch".

I didn't get it installed on FC3... but they only released a binary for FC4.

I'm going to get FC4 installed in a vmware machine.

Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

OK. Debian install went fine But, we also have a Trustix box used for our Enterprise. Problem is, there is no binaries for Trustix available. Does anyone know if the another install will work? We downloaded the RedHat installation and were thinking of trying that out but I'd like some insight. Anyone know if that will work? Last time we complied it from source code.